Chief Information Security Officer

Job Description
At Boeing, we innovate and collaborate to make the world a better place. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
Location:
Brisbane
Category:
Business Support
Position Type:
Permanent
Job Reference:
BOE/1930477
Attachments:
No File Attached
Share This:
We are seeking a talented Chief Information Security Officer to provide leadership of cyber security, information assurance, and IT/OT security across Boeing Defence Australia (BDA) and other Boeing Australia subsidiaries. Reporting to the BDA Chief Security Officer, the role ensures that Boeing's regional operations comply with the Australian Government information security policy, while aligning with Boeing's global security and information protection policy frameworks.
Located in Brisbane, this role is the senior Boeing authority in Australia for cyber and information security, responsible for protecting classified environments, sovereign industrial capabilities, enterprise and other critical operational systems. Therefore, they will display the ability to lead through influence rather than direct authority. The successful candidate will demonstrate exceptional stakeholder management skills to effectively communicate complex cybersecurity risks, priorities, and strategies in clear business terms. They will be adept at influencing decision-making at senior levels, fostering a collaborative security culture, and aligning cybersecurity initiatives with organisational goals and regulatory requirements. In addition, they will be able to handle crisis situations calmly and collaborate effectively with security, IT and other business partners.
Key Responsibilities include:

• Develop and implement a comprehensive information security and cyber defence strategy across Boeing Defence Australia and other regional subsidiaries, that integrates closely with the other non-cyber security domains.
• Advise the BDA CSO, executive leadership, and program directors on cyber risk management, threats, mitigation strategies and security investment.
• In close collaboration with Enterprise cybersecurity teams, ensure alignment between Australian requirements and Boeing global security standards.
• Ensure compliance with the ISM, DSPF, DISP, ASDEFCON security clauses, and Defence accreditation processes.
• Oversee IRAP assessments, system security plans, risk assessments, and continuous monitoring programs ensuring consistent implementation of ASD Essential Eight maturity targets.
• Lead cybersecurity for all IT and OT environments across Boeing Australia, including manufacturing systems, mission systems labs, sustainment facilities, and unmanned systems operations.
• Drive secure-by-design engineering for ICT, OT, cloud, and cross-domain solutions.
• Develop and oversee the Australian cyber defence capability, including SOC operations, threat intelligence, and incident response.
• Coordinate cyber incident management across BDA and other supported subsidiaries, in conjunction with local Boeing global IT and cyber teams, ensuring timely regulatory reporting is undertaken.
• Provide cybersecurity assurance for bids, platform upgrades, and sovereign capability programs.
• Lead supplier and partner security assessments, including DISP-aligned supply chain assurance.
• Act as a senior cyber security interface with Defence, ASD, DISP, CASG, and engage in cross-industry working groups.
• Foster a strong cyber security posture across the organisation, promoting awareness, education, and behavioral change.
• Lead, coach, and develop a multidisciplinary cyber security team of subject matter experts.
• Champion a constructive culture founded in the Boeing Values and Behaviours.
• Engage and collaborate with key stakeholders to align business imperatives and strategic priorities with applicable requirements, standards, and best practices.

Experience/Qualifications

• Senior leadership experience in cyber and information security assurance ideally within Defence, national security, or critical infrastructure.
• Proven track record of building and leading successful teams.
• Deep knowledge of ISM, DSPF, DISP, and Defence accreditation processes, as well as familiarity with ISO 27001, NIST CSF, and NIST SP 800-171 frameworks.
• Demonstrated experience securing both IT and OT environments.
• Demonstrated experience leading regulatory compliance assessments/efforts pertaining to the ASD ISM and Essential Eight cybersecurity frameworks.
• Experience presenting complex security risks, strategies, and concepts in business terms to executive leadership and Board of Directors.

Desirable Criteria

• Degree in cyber security, information systems, engineering, or related field.
• Certifications such as IRAP, CISSP, CISM, CISA, SABSA, CCSP.
• Experience in aerospace, Defence primes, or complex multi-site industrial environments.

Work Environment and Conditions

• Regular domestic travel required with occasional international travel.
• Participation in after-hours response and crisis management as necessary.

Applicants must be Australian Citizens to meet defence security requirements and hold a current NV2 clearance.
Equal Opportunity Employer:
We are an equal opportunity employer. We do not accept unlawful discrimination in our recruitment or employment practices on any grounds including but not limited to; race, color, ethnicity, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military and veteran status, or other characteristics covered by applicable law.
We have teams in more than 65 countries, and each person plays a role in helping us become one of the world's most innovative, diverse and inclusive companies. We are proud members of the Valuable 500 and welcome applications from candidates with disabilities. Applicants are encouraged to share with our recruitment team any accommodations required during the recruitment process. Accommodations may include but are not limited to: conducting interviews in accessible locations that accommodate mobility needs, encouraging candidates to bring and use any existing assistive technology such as screen readers and offering flexible interview formats such as virtual or phone interviews.